25 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-0572
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. CVE-2022-0572 Note that Nessus relies on the presence of the package as reported by the...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-6026-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6026-1 advisory. It was discovered that Vim was incorrectly processing Vim buffers. An attacker could possibly use this issue to perform illegal...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2594)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2022 : vim-common, vim-data, vim-default-editor (ALAS2022-2022-077)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-077 advisory. A flaw was found in vim. The vulnerability occurs due to a crash when recording and using Select mode and leads to an out-of-bounds read. This flaw allows an attacker to input a specially craft...
EulerOS Virtualization 2.9.0 : vim (EulerOS-SA-2022-2212)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read in vim/vim prior to 8.2. CVE-2022-0319 - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-2042)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-1880)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : vim (EulerOS-SA-2022-1880)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read in vim/vim prior to 8.2. CVE-2022-0319 - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...
EulerOS 2.0 SP9 : vim (EulerOS-SA-2022-1856)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read in vim/vim prior to 8.2. CVE-2022-0319 - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-1816)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2022-1799)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : vim, --advisory ALAS2-2022-1805 (ALAS-2022-1805)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1805 advisory. A flaw was found in vim. The vulnerability occurs due to a crash when recording and using Select mode and leads to an out-of-bounds read. This flaw allows an attacker to input a specially crafted...
EulerOS 2.0 SP10 : vim (EulerOS-SA-2022-1799)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Out-of-bounds Read in vim/vim prior to 8.2. CVE-2022-0319 - Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2...
Ubuntu 16.04 ESM : Vim vulnerabilities (USN-5460-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5460-1 advisory. It was discovered that Vim was incorrectly processing Vim buffers. An attacker could possibly use this issue to perform illegal memory access and expose...
Debian DLA-3011-1 : vim - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3011 advisory. - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. CVE-2022-0261, CVE-2022-0572 - Access of Memory Location Before Start of Buffer in GitHub...
CVE-2022-0572 affecting package vim for versions less than 8.2.4743-1
CVE-2022-0572 affecting package vim for versions less than 8.2.4743-1. An upgraded version of the package is available that resolves this issue...
EulerOS 2.0 SP8 : vim (EulerOS-SA-2022-1591)
According to the versions of the vim packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Heap-based Buffer Overflow CVE-2022-0213 - Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. CVE-2022-0261...
Amazon Linux 2 : vim (ALAS-2022-1771)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1771 advisory. A flaw was found in vim that causes an out-of-range pointer offset vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. CVE-2022-05...
Fix of CVE: CVE-2022-0554, CVE-2022-0729, CVE-2022-0685, CVE-2022-0572
CVE-2022-0554: fix ending up with no current buffer - CVE-2022-0572: fix crashing when repeatedly using :retab - CVE-2022-0685: fix crashing when using special multi-byte character - CVE-2022-0729: fix crashing with specific regexp pattern and string...
CVE-2022-0572 affecting package vim 8.2.4281-1
CVE-2022-0572 affecting package vim 8.2.4281-1. An upgraded version of the package is available that resolves this issue...